Name of the Vulnerable Software and Affected Versions: TYPO3 (affected versions not specified)

Description: The issue concerns TYPO3's built-in record registration functionality, also known as the basic shopping cart, which uses recs URL parameters. This functionality is vulnerable to denial of service due to the failure to properly validate anonymous user sessions. As a result, attackers can exploit this issue to create an arbitrary number of individual session-data records in the database.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.